Lucene search
K

1374 matches found

ATTACKERKB
ATTACKERKB
added 2022/04/18 12:0 a.m.128 views

CVE-2022-29464

Certain WSO2 products allow unrestricted file upload with resultant remote code execution. The attacker must use a /fileupload endpoint with a Content-Disposition directory traversal sequence to reach a directory under the web root, such as a ../../../../repository/deployment/server/webapps...

10CVSS9.7AI score0.99999EPSS
In wildExploits22References6
CNVD
CNVD
added 2022/04/15 12:0 a.m.9 views

RiteCMS arbitrary file overwrite vulnerability

RiteCMS is a web CMS. An arbitrary file overwrite vulnerability exists in RiteCMS versions 3.1.0 and below, which stems from the failure of a web system or product to properly filter special elements in a resource or file path, and can be exploited by an authenticated attacker to overwrite any fi...

8.5CVSS5AI score0.03892EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/04/12 12:15 p.m.9 views

CVE-2022-24248

RiteCMS version 3.1.0 and below suffers from an arbitrary file deletion via path traversal vulnerability in Admin Panel. Exploiting the vulnerability allows an authenticated attacker to delete any file in the web root along with any other file on the server that the PHP process user has the prope...

8.5CVSS6.7AI score0.20963EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/04/12 12:0 a.m.5 views

RiteCMS 路径遍历漏洞

RiteCMS is a web CMS. A path traversal vulnerability exists in RiteCM, which can be exploited by an authenticated attacker to delete any file in the web root directory...

8.5CVSS6.5AI score0.20963EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/04/04 12:0 a.m.2 views

Moment.js 路径遍历漏洞

Moment.js is a JavaScript date library. It is used to parse, validate, manipulate and format dates. A path traversal vulnerability exists in Moment.js versions 1.0.1 through 2.29.1. An attacker could use this vulnerability to access files and directories stored outside of the web root folder...

7.5CVSS6.8AI score0.05664EPSS
Exploits0References36
ATTACKERKB
ATTACKERKB
added 2022/04/03 11:15 p.m.2 views

CVE-2022-27249

An unrestricted file upload vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to execute arbitrary code by using UploadDwg to upload a crafted aspx file to the web root, and then visiting the URL for this aspx resource...

9CVSS6.2AI score0.04628EPSS
Exploits3References3
OSV
OSV
added 2022/04/03 11:15 p.m.5 views

CVE-2022-27249

An unrestricted file upload vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to execute arbitrary code by using UploadDwg to upload a crafted aspx file to the web root, and then visiting the URL for this aspx resource...

8.8CVSS7.6AI score0.04628EPSS
Exploits3References2
Prion
Prion
added 2022/04/03 11:15 p.m.16 views

Unrestricted file upload

An unrestricted file upload vulnerability in IdeaRE RefTree before 2021.09.17 allows remote authenticated users to execute arbitrary code by using UploadDwg to upload a crafted aspx file to the web root, and then visiting the URL for this aspx resource...

9CVSS8.7AI score0.04628EPSS
Exploits3References2Affected Software1
UbuntuCve
UbuntuCve
added 2022/03/10 5:47 p.m.52 views

CVE-2022-26520

In pgjdbc before 42.3.3, an attacker who controls the jdbc URL or properties can call java.util.logging.FileHandler to write to arbitrary files through the loggerFile and loggerLevel connection properties. An example situation is that an attacker could create an executable JSP file under a Tomcat...

9.8CVSS7.1AI score0.02999EPSS
Exploits0References3
OSV
OSV
added 2022/02/11 6:15 p.m.7 views

CVE-2021-22785

A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 Versions prior to V3.40, Modicon M340 X...

7.5CVSS5.8AI score0.00954EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/02/11 5:40 p.m.5 views

CVE-2021-22785

A CWE-200: Information Exposure vulnerability exists that could cause sensitive information of files located in the web root directory to leak when an attacker sends a HTTP request to the web server of the device. Affected Product: Modicon M340 CPUs: BMXP34 Versions prior to V3.40, Modicon M340 X...

5.8AI score0.00954EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/02/11 12:0 a.m.24 views

Schneider Electric 多款产品信息泄露漏洞

Schneider Electric Modicon Quantum is a large programmable logic controller PLC for process applications, high availability and safety solutions. Schneider Electric Modicon M340 is a medium-range PLC programmable logic controller for industrial processes and infrastructure. An information...

7.5CVSS5.6AI score0.00954EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/02/04 5:15 p.m.7 views

CVE-2022-24262

The config restore function of Voipmonitor GUI before v24.96 does not properly check files sent as restore archives, allowing remote attackers to execute arbitrary commands via a crafted file in the web root...

8.8CVSS7.7AI score0.01825EPSS
Exploits1References3
NVD
NVD
added 2022/02/04 5:15 p.m.19 views

CVE-2022-24262

The config restore function of Voipmonitor GUI before v24.96 does not properly check files sent as restore archives, allowing remote attackers to execute arbitrary commands via a crafted file in the web root...

8.8CVSS0.01825EPSS
Exploits1References2
OSV
OSV
added 2022/02/04 5:15 p.m.3 views

CVE-2022-24262

The config restore function of Voipmonitor GUI before v24.96 does not properly check files sent as restore archives, allowing remote attackers to execute arbitrary commands via a crafted file in the web root...

8.8CVSS6AI score0.01825EPSS
Exploits1References2
Prion
Prion
added 2022/02/04 5:15 p.m.12 views

Command injection

The config restore function of Voipmonitor GUI before v24.96 does not properly check files sent as restore archives, allowing remote attackers to execute arbitrary commands via a crafted file in the web root...

6.5CVSS8.8AI score0.01825EPSS
Exploits1References2Affected Software1
CNNVD
CNNVD
added 2022/02/04 12:0 a.m.4 views

Voipmonitor 代码问题漏洞

VoIPmonitor is an open source network packet sniffer from the VoIPmonitor team. Has a commercial front-end for the SIP RTP RTCP SKINNY SCCP MGCP WebRTC VoIP protocol running on Linux. A security vulnerability exists in Voipmonitor that stems from the configuration recovery feature of the...

8.8CVSS8.6AI score0.01825EPSS
Exploits1References3
CNNVD
CNNVD
added 2022/01/20 12:0 a.m.4 views

Philips Vue PACS 路径遍历漏洞

Philips Vue PACS is an image management solution from Philips, a Dutch company. A security vulnerability exists in Philips Vue PACS that stems from a VideoStream feature that allows authenticated users to access files stored outside of the web root directory...

6.5CVSS7.1AI score0.00864EPSS
Exploits0References5
OSV
OSV
added 2022/01/14 8:15 p.m.3 views

CVE-2022-0130

Tenable.sc versions 5.14.0 through 5.19.1 were found to contain a remote code execution vulnerability which could allow a remote, unauthenticated attacker to execute code under special circumstances. An attacker would first have to stage a specific file type in the web server root of the Tenable....

8.1CVSS6.4AI score0.01613EPSS
Exploits0References1
OSV
OSV
added 2022/01/14 6:15 p.m.4 views

CVE-2022-23227

NUUO NVRmini2 through 3.11 allows an unauthenticated attacker to upload an encrypted TAR archive, which can be abused to add arbitrary users because of the lack of handleimportuser.php authentication. When combined with another flaw CVE-2011-5325, it is possible to overwrite arbitrary files under...

9.8CVSS7.5AI score0.49431EPSS
Exploits1References5
Rows per page
Query Builder